Telerik Vulnerabilities with file Telerik.Windows.Control.dll in Nsight Visual Studio Edition

Vulnerabilities found in Nsight Visual Studio Edition

I was directed here from Nvidia support and hoping that someone can point me in the right direction. We ran a vulnerability scan on a machine that runs ArcGIS Pro and found 9 Critical /High vulnerabilities. (technically 3 files show 3 different vulnerabilities)

Telerik UI for WPF < 2024.3.924 Multiple Vulnerabilities
Progress Telerik UI for WPF 2024.4.1213 (CVE-2024-10095)
Telerik UI for WPF < 2024.4.1111 Unsafe Deserialization

C:\Program Files (x86)\NVIDIA Corporation\Nsight Visual Studio Edition
C:\Program Files (x86)\NVIDIA Corporation\Nsight Visual Studio Edition 2025.1\Host\Common\Telerik.Windows.Controls.dll
C:\Program Files (x86)\NVIDIA Corporation\Nsight Visual Studio Edition 2025.1\Host64\Common\Telerik.Windows.Controls.dll
C:\Program Files (x86)\NVIDIA Corporation\Nsight Visual Studio Edition 2025.1\Monitor\Common\Telerik.Windows.Controls.dll

All seem to point to Telerik.Windows.Controls.dll version 2012..2.1422.35

I installed the latest version I could find 2025.1 as seen above in the path and the scans found the same vulnerabilities.

Is there an update or a patch for this?

Hi, @kbeyers

Thanks for reporting this to us ! Our dev will work on the issue and expect the patch in one of the upcoming releases.

As of NVidia NSight Visual Studio Edition 2025.3.25246, the Telerik.Windows.Controls.dll version 2012..2.1422.35 is still incorporated, and therefore NSight VSE still has the same vulnerabilities being reported. Is there a plan, or estimate to when this dll will be upgraded?

Hi, @robert.siegel

Sorry for waiting this so long.
The next release should have this fix. Ideally next month.